cypress.io - testing framework 27/09/2018

Game changers
Time travel
Cypress takes snapshots as your tests run. Simply hover over commands in the Command Log to see exactly what happened at each step.
Debuggability
Stop guessing why your tests are failing. Debug directly from familiar tools like Chrome DevTools. Our readable errors and stack traces make debugging lightning fast.
Real time reloads
Cypress automatically reloads whenever you make changes to your tests. See commands execute in real time in your app.
Automatic waiting
Never add waits or sleeps to your tests. Cypress automatically waits for commands and assertions before moving on. No more async hell.
Spies, stubs, and clocks
Verify and control the behavior of functions, server responses, or timers. The same functionality you love from unit testing is right at your fingertips.
Network traffic control
Easily control, stub, and test edge cases without involving your server. You can stub network traffic however you like.
Consistent results
Our architecture doesn’t use Selenium or WebDriver. Say hello to fast, consistent and reliable tests that are flake-free.
Screenshots and videos
View screenshots taken automatically on failure, or videos of your entire test suite when run headlessly.

splunk 17/08/2018

logging aggregation tool

AWS Well-Architected 09/07/2018

The Well-Architected framework has been developed to help cloud architects build the most secure, high-performing, resilient, and efficient infrastructure possible for their applications. This framework provides a consistent approach for customers and partners to evaluate architectures, and provides guidance to help implement designs that will scale with your application needs over time.

appveyor build integration 23/05/2018

Continuous Integration solution for Windows and Linux
- Start in minutes
- Works with your favorite source control
- Fast build VMs with admin/sudo access
- Multi stage deployments
- Windows and Linux support
Support for GitHub, GitHub Enterprise, Bitbucket, GitLab, VSTS, Kiln or custom repos
Configure builds in versioned YAML or UI
Isolated, clean build environment for every build
Built-in deployment and NuGet server
Branch and PR builds to support your development workflow
Personal support and vibrant community

Cron Expression Descriptor 18/05/2018

Describes Cron expressions as human readable text

Dataflow (Task Parallel Library) 17/05/2018

The Task Parallel Library (TPL) provides dataflow components to help increase the robustness of concurrency-enabled applications. These dataflow components are collectively referred to as the TPL Dataflow Library. This dataflow model promotes actor-based programming by providing in-process message passing for coarse-grained dataflow and pipelining tasks. The dataflow components build on the types and scheduling infrastructure of the TPL and integrate with the C#, Visual Basic, and F# language support for asynchronous programming. These dataflow components are useful when you have multiple operations that must communicate with one another asynchronously or when you want to process data as it becomes available. For example, consider an application that processes image data from a web camera. By using the dataflow model, the application can process image frames as they become available. If the application enhances image frames, for example, by performing light correction or red-eye reduction, you can create a pipeline of dataflow components. Each stage of the pipeline might use more coarse-grained parallelism functionality, such as the functionality that is provided by the TPL, to transform the image.

Meltdown and Spectre 17/05/2018

Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware vulnerabilities allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spectre to get hold of secrets stored in the memory of other running programs. This might include your passwords stored in a password manager or browser, your personal photos, emails, instant messages and even business-critical documents.
Meltdown and Spectre work on personal computers, mobile devices, and in the cloud. Depending on the cloud provider's infrastructure, it might be possible to steal data from other customers.

Durable Task Framework 14/05/2018

This framework allows users to write long running persistent workflows in C# using the async/await capabilities.
It is used heavily by various teams at Microsoft to reliably orchestrate long-running provisioning, monitoring and management operations. The orchestrations scale out linearly by simply adding more worker machines.
By open sourcing this project we hope to give the community a very cost-effective alternative to heavy-duty workflow systems. We also hope to build an ecosystem of providers and activities around this simple yet incredibly powerful framework.

MS Test 2 13/05/2018

Microsoft Test Framework "MSTest V2"
Welcome to the "MSTest V2" repository, the evolution of the Microsoft Test Framework and Adapter. "MSTest V2" is currently in use in a variety of scenarios including:
in the relevant in-box unit test project templates (Visual Studio 2017 Preview 4 onwards)
in the Create Unit Tests wizard (Visual Studio 2017 Preview 4 onwards)
in the Create IntelliTest wizard (Visual Studio 2017 Preview 4 onwards)
This is a fully supported, open source and cross-platform implementation of the MSTest test framework with which to write tests targeting .NET Framework, .NET Core and ASP.NET Core on Windows, Linux, and Mac. You can read more about MSTest V2 here. For API documentation refer here.

frameworkium 13/05/2018

Frameworkium provides strong code structure guidelines and contains some nice Java libraries to make writing tests (web, mobile app, API, other tests that we’ve not thought of yet) more consistent and familiar.
It saves reinventing the wheel.
It should mean you spend less time worrying about the plumbing, and more time thinking about the actual tests themselves. Your test projects should also stay structured, clean and focused on the testing, rather than full of helpers and widgets.

browserstack 02/05/2018

This is another testing platform
Real Device Cloud
Your personal cloud of physical mobile and tablet devices, instantly available for mobile browser testing. Our list is constantly updated with the latest and greatest of Android and iOS devices, like iPhone, Nexus, and Samsung Galaxy.
1100+ real desktop browsers
Test on an exhaustive range of browsers, right from legacy versions of Internet Explorer, to the latest beta and developer releases of Edge, Safari, Chrome, Firefox, Opera, and Yandex.
Native browser experience
We provide real browsers installed on real devices, so testing on them is just as good as testing on a browser installed on your local machine. Your test results will always be accurate, as they would be on a freshly-installed, local browser.
Test development environments
Our Local Testing feature lets you test your development and staging environments on BrowserStack. It works out of the box too, by creating a highly secure connection to BrowserStack. Test sites, web applications and design folders, from behind firewalls and proxies, or on internal setups.

perfecto 02/05/2018

Perfecto: The platform built for increasing DevOps quality and velocity
Coverage, test automation, and release velocity are major challenges facing development teams. You need the tools to master all three… ideally, based on one cloud-based platform that integrates into your team’s toolchain. Building testing into the entire DevOps pipeline will eventually lead you to the fundamental question…
Coverage & connectivity
Test Automation
Reporting & Analytics
The Cloud-based Continuous Quality Lab

poshgui.com 19/04/2018

Create your form for users on top of PowerShell. Drag drop components and then only wire up your application.

Dev documentation 09/04/2018

UK API technical and data standards 19/02/2018

The following web-based application programming interface (API) standards guidance will help your organisation deliver the best possible services to users.

pwabuilder 05/02/2018

his quick start walks you through the steps to create a Progressive Web App (PWA) from scratch using the pwabuilder.com builder site. Make sure your website meets the minimum requirements.
The first step is to build the Manifest for your application using the pwabuilder.com web site. The builder will search in the home page of your site looking for information about the app in specific meta tags. For more information, read What is a Manifest.

www.import.io 05/02/2018

Extract data without learning to program
Using highly sophisticated machine learning algorithms, we try and extract the data you want automatically the first time from both list and detail pages. If we don’t get it right – no need to worry – use the point and click web interface to show us what you want and we’ll go get it for you.
Record and playback website interaction
With page interaction, you can enter a URL and interact directly with the website while recording every click, scroll, and hover. Once you reach the final page, just click to extract exactly what you want.
Monitor anything that changes on a website
Have you ever faced the challenge of keeping up with changes to a competitor’s website or monitoring prices on ecommerce or manufacturing sites regularly? With Import.io Change Reports, you schedule your change reports on as many websites as you need to run, as often as you need them. In the example, our customer was monitoring hotel room price changes during a conference in San Jose, CA.
Compare similar data over multiple websites
Show data over multiple websites and allows users to compare attributes such as product offerings, inventory, or pricing. For items names that are not an exact match, the reports use proprietary “fuzzy matching” logic.
Share data and reports in a secure portal
Once reports or data spreadsheets are saved, you can choose to share this information with others in your unique portal. Access to the portal does not require an Import.io login.
Get a hierarchy of web data that is always up to date
With automatic page linking, the information from the list page is automatically updated prior to collecting data from the detail pages. Automatic page linking provides up-to-date web data, which can be scheduled to be collected and downloaded hourly, daily, monthly or at whatever interval you need.
Get data from 1,000’s of URLs, all at once
One page of data is good; thousands of pages are better. Use our URL generator to find common patterns and generate thousands of URLs in seconds – save them and run instant data queries.
Discover all similar URLs automatically
Enter one URL and discover similar URLs then choose which ones to include in the data extraction.
and more on the website

Apiary API Flow 05/02/2018

Building great APIs is all about effective collaboration. App developers, testers, architects, product managers, clients, and partners all bring unique perspectives to the design of your APIs. To be successful, your team needs to make sure every stakeholder has a say.

C# Driver for Zombie.js 19/01/2018

A dynamic driver for running Zombie.js from .NET
Zombie.js Driver can be installed from NuGet. Run the following commands from the Package Manager Console:
Getting Started
The following example searches "zombie.js" and checks that assaf's site is the first result.
// C# version
dynamic zombie = new ZombieDriver();
zombie.visit("https://duckduckgo.com");
zombie.fill("q", "zombie.js");
zombie.click("input[type=submit]");

If you're going to write an insanely fast, headless browser, how can you not call it Zombie? Zombie it is.
Zombie.js is a lightweight framework for testing client-side JavaScript code in a simulated environment. No browser required.

Web API Help Pages using Swagger 08/01/2018

Understanding the various methods of an API can be a challenge for a developer when building a consuming application.
Generating good documentation and help pages for your Web API, using Swagger with the .NET Core implementation Swashbuckle.AspNetCore, is as easy as adding a couple of NuGet packages and modifying the Startup.cs.
Swashbuckle.AspNetCore is an open source project for generating Swagger documents for ASP.NET Core Web APIs.
WHAT IS THE OPENAPI SPECIFICATION?
At the heart of the above tools is the OpenAPI Specification (formerly called the Swagger Specification). The specification creates the RESTful contract for your API, detailing all of its resources and operations in a human and machine readable format for easy development, discovery, and integration.
Swagger is a machine-readable representation of a RESTful API that enables support for interactive documentation, client SDK generation, and discoverability.
This tutorial builds on the sample on Building Your First Web API with ASP.NET Core MVC and Visual Studio. If you'd like to follow along, download the sample at https://github.com/aspnet/Docs/tree/master/aspnetcore/tutorials/first-web-api/sample.

https://httpbin.org/ 30/10/2017

Testing an HTTP Library can become difficult sometimes. RequestBin is fantastic for testing POST requests, but doesn't let you control the response. This exists to cover all kinds of HTTP scenarios. Additional endpoints are being considered.
All endpoint responses are JSON-encoded.

VSTS - Release variables 07/08/2017

As you compose the tasks for deploying your application into each environment, variables will help you to:
Define a more generic deployment process once, and then customize it easily for each environment. For example, a variable can be used to represent the connection string for web deployment, and the value of this variable can be changed from one environment to another. These are custom variables.
Use information about the context of the particular release, environment, artifacts, or agent in which the deployment process is being run. For example, your script may need access to the location of the build to download it, or to the working directory on the agent to create temporary files. These are default variables.

How to implement row level security 12/07/2017

Microsofts document about how to implement row level security

Safe way to get identity 12/07/2017

Implementing identity for multiple threads

newsequentialid 12/07/2017

SQL seqential GUID

DataFlow library 07/07/2017

Read about data flow

cloudflare 06/07/2017

Making the Internet Work the Way It Should for Anything Online
Cloudflare speeds up and protects millions of websites, APIs, SaaS services, and other properties connected to the Internet. Our Anycast technology enables our benefits to scale with every server we add to our growing footprint of data centers.

HTTP VS HTTPS 06/07/2017

Example of loading data using http vs https
Encrypted Websites Protect Our Privacy and are Significantly Faster
Compare load times of the unsecure HTTP and encrypted HTTPS versions of this page. Each test loads 360 unique, non-cached images (0.62 MB total). For fastest results, run each test 2-3 times in a private/incognito browsing session.

Lets encrypt 06/07/2017

To enable HTTPS on your website, you need to get a certificate (a type of file) from a Certificate Authority (CA). Let’s Encrypt is a CA. In order to get a certificate for your website’s domain from Let’s Encrypt, you have to demonstrate control over the domain. With Let’s Encrypt, you do this using software that uses the ACME protocol, which typically runs on your web host.
To figure out what method will work best for you, you will need to know whether you have shell access (also known as SSH access) to your web host. If you manage your website entirely through a control panel like cPanel, Plesk, or WordPress, there’s a good chance you don’t have shell access. You can ask your hosting provider to be sure.

tangible T4 Editor 2.3.0 plus modeling tools for VS 2015 10/02/2017

Quickly write your own .NET Code Generator via T4 Text-Templates (.tt-Files) with Intelli-Sense & Syntax-Highlighting. tangible T4 Editor comes with UML-Style modeling tools and can generate from diagrams, database schemas, xml, word, excel sources, or any other data source. Microsoft T4 looks and smells like ASP.NET - it is simple! T4 is used in ASP.NET MVC, Entity Framework and DSL Tools. The Microsoft T4 Generation Engine is already built into Visual Studio, however Visual Studio does not provide an Code-Editor for it. That is why we created the tangible T4 Editor for Visual Studio. You can now accelerate your projects by adopting Microsoft T4 today and generate the code you need directly from diagrams, database schemas, xml files or other sources.

GitVersion - VSTS Extenstion 17/11/2016

Versioning when using Git, solved. GitVersion looks at your Git history and works out the semantic version of the commit being built.
It works with most branching strategies but has been designed mainly around GitFlow and GitHubFlow (pull request workflow). The calculated version numbers can then be accessed through variables such as $(GitVersion_NuGetVersion) and $(GitVersion_SemVer). It is also very configurable to allow it to work with most release workflows!

sqlmap - SQL injection tool 14/11/2016

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Features
Full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, Sybase, SAP MaxDB, HSQLDB and Informix database management systems.
Full support for six SQL injection techniques: boolean-based blind, time-based blind, error-based, UNION query-based, stacked queries and out-of-band.
Support to directly connect to the database without passing via a SQL injection, by providing DBMS credentials, IP address, port and database name.
Support to enumerate users, password hashes, privileges, roles, databases, tables and columns.
Automatic recognition of password hash formats and support for cracking them using a dictionary-based attack.
Support to dump database tables entirely, a range of entries or specific columns as per user's choice. The user can also choose to dump only a range of characters from each column's entry.
Support to search for specific database names, specific tables across all databases or specific columns across all databases' tables. This is useful, for instance, to identify tables containing custom application credentials where relevant columns' names contain string like name and pass.
Support to download and upload any file from the database server underlying file system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
Support to execute arbitrary commands and retrieve their standard output on the database server underlying operating system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
Support to establish an out-of-band stateful TCP connection between the attacker machine and the database server underlying operating system. This channel can be an interactive command prompt, a Meterpreter session or a graphical user interface (VNC) session as per user's choice.
Support for database process' user privilege escalation via Metasploit's Meterpreter getsystem command.

VSTS Plugin - Package Management 08/11/2016

Share code with everyone in your organization by building and sharing packages of reusable components. The Package Management extension enables continuous delivery workflows by hosting your components/packages and making them available to your team, your builds, and your releases. If you're currently storing your NuGet packages on a NuGet server or on a file share that you manage yourself, you can move those packages to Team Services and enjoy deep integration with Team Build and Release Management. Package Management currently supports NuGet packages.
Package Management core features
Package Management works with your existing investments in Version Control and Team Build by enabling you to seamlessly share components across your engineering process.
It also works great with other CI systems like Jenkins.
Organize and secure with feeds
Package Management lets you organize the components that your project consumes and produces into feeds.
You can create as many or as few feeds as you want to match your development process, continuous integration setup, and governance needs.
And, you can protect your packages with simple Owner/Contributor/Reader permissions on each feed.

Microsoft - Test & Feedback tool 11/10/2016

Now everyone on the team can own quality. Capture findings, create issues, and collaborate with the team, directly from the browser.
Test & Feedback - Now everyone on the team can own quality. Capture findings, create issues, and collaborate with the team, directly from the browser.
Everyone in the team, be it product owners, developers, testers, UX designers etc., can now test their web-apps and give feedback, all directly from the browser on any platform: Windows, Mac, or Linux. All kinds of teams will now be able to drive quality in 3 easy steps – capture, create & collaborate
Capture - Take notes, screenshots with annotations, and screen recordings to capture problems. Automatically include rich data like user actions (as an image action log), page load data, and system information.
Create - Create bugs, tasks, and feedback response work items to send feedback or report problems. Create test cases quickly based on the image action log while you explore your app. Automatically attach all your captured information.
Collaborate - Work offline in standalone mode, then export your session to share findings with your team. For more integrated experiences with end-to-end traceability, connect to Visual Studio Team Services or to Team Foundation Server 2015 or later. For example, you can explore user stories directly from the board, manage all feedback requests received, and easily track bugs, tasks and other work-items. To view completed exploratory sessions and get insights across all completed sessions, for example, details about sessions and work items that are created, explored, and weren’t explored, plus other data, go to your exploratory testing insights page.
You can use the extension for FREE in these modes: Standalone and Connected
Standalone Mode:
Available to everyone. Any team, large or small, can use standalone mode to capture issues using screenshots with inline annotations and notes and then share the results using a session report. No connection to Visual Studio Team Services or Team Foundation Server required.
Connected Mode:
Connect to Visual Studio Team Services/Team Foundation Server to drive your exploratory testing and feedback flows.
- Users with Basic access: Full capture and create capabilities to submit bugs, tasks and test cases. Includes collaboration capabilities like end-to-end traceability, rich insights across completed exploratory sessions, simplified bug/task tracking & triaging, and so on.
- Users with Stakeholder access: Full capture and create capabilities, except for test cases, to submit feedback and respond to feedback requests from your team. Feedback experiences are available in Team Services and TFS "15" or later only.
Learn more https://www.visualstudio.com/en-us/docs/test/manual-exploratory-testing/getting-started/perform-exploratory-tests

Flexbox 11/10/2016

The Flexbox Layout (Flexible Box) module (currently a W3C Last Call Working Draft) aims at providing a more efficient way to lay out, align and distribute space among items in a container, even when their size is unknown and/or dynamic (thus the word "flex").
The main idea behind the flex layout is to give the container the ability to alter its items' width/height (and order) to best fill the available space (mostly to accommodate to all kind of display devices and screen sizes). A flex container expands items to fill available free space, or shrinks them to prevent overflow.
Most importantly, the flexbox layout is direction-agnostic as opposed to the regular layouts (block which is vertically-based and inline which is horizontally-based). While those work well for pages, they lack flexibility (no pun intended) to support large or complex applications (especially when it comes to orientation changing, resizing, stretching, shrinking, etc.).
Note: Flexbox layout is most appropriate to the components of an application, and small-scale layouts, while the Grid layout is intended for larger scale layouts.

Metasploit Newbies
New to Metasploit? This is the place to start. Get access to information, free tools, tutorials and more.
Get an intro to penetration testing
Learn about Metasploit
Install Metasploit (Windows | Linux)
Troubleshoot Installation Issues
Get started (Pro | Community)
View all documentation (PDF | HTML)
Get community support
Framework Users
Been using MSF for years? Check out the latest development and tap into the community.
Get community support
Compare with Metasploit Pro
Setting up a development environment
Read Rapid7's open source commitment
Meterpreter documentation
Contribute to Metasploit
Exploit Developers
Want to write exploits or submit open source code? Get access to the tools and docs.
Download source code
Join Metasploit IRC channel
Access developer docs
Setting up a development environment
Read Rapid7's open source commitment

arachni - web application security scanner framework 26/09/2016

Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of modern web applications.
It is free, with its source code public and available for review.
It is multi-platform, supporting all major operating systems (MS Windows, Mac OS X and Linux) and distributed via portable packages which allow for instant deployment.
It is versatile enough to cover a great deal of use cases, ranging from a simple command line scanner utility, to a global high performance grid of scanners, to a Ruby library allowing for scripted audits, to a multi-user multi-scan web collaboration platform. In addition, its simple REST API makes integration is a cinch.
Finally, due to its integrated browser environment, it can support highly complicated web applications which make heavy use of technologies such as JavaScript, HTML5, DOM manipulation and AJAX.

Image Optimizer 13/09/2016

Uses industry standard tools to optimize any JPEG, PNG and Gifs - including animated Gifs. It can do both lossy and lossless optimization.
Features
Adds a right-click menu to any folder and image in Solution Explorer that let's you automatically optimize all PNG, GIF and JPEG files in that folder.
Optimizes PNGs (uses Zopfli compression)
Optimizes GIFs
Optimizes animated GIFs
Optimizes JPGs (uses MozJPEG)
Works on single images files or entire folders
Copy any image as base64 dataURI to clipboard
Optimize images
Simply right-click any file or folder containing images and click one of the image optimization buttons.

VS Bundler & Minifier 13/09/2016

Features
Bundles CSS, JavaScript or HTML files into a single output file
Saving a source file triggers re-bundling automatically
Support for globbing patterns
MSBuild support for CI scenarios supported
Minify individual or bundled CSS, JavaScript and HTML files
Minification options for each language is customizable
Shows a watermark when opening a generated file
Task Runner Explorer integration
Command line support
Shortcut to update all bundles in solution
Suppress output file generation
Convert to Gulp

dbForge SQL Complete, v5.5 Express 13/09/2016

Express is a free edition that provides basic code completion functionality. To see advantages of dbForge SQL Complete over Microsoft SQL Server Management Studio 2016 (SSMS), please refer to the

Varnish cache 08/09/2016

Varnish Cache is a web application accelerator also known as a caching HTTP reverse proxy. You install it in front of any server that speaks HTTP and configure it to cache the contents. Varnish Cache is really, really fast. It typically speeds up delivery with a factor of 300 - 1000x, depending on your architecture..

Tool allows you to record a selected area of your screen and save it as a Gif 06/09/2016

Features:
Record your screen and save directly to a gif looped animation or a video.
Pause and continue to record or start over by discard the recording.
Move the window around to record what you want, it stays on top.
You can add Text, Subtitles, Title Frames, Borders, Watermarks, Drawings, etc.
Crop and Resize.
Remove frames that you don't want.
Select a folder to save the file automatically or select one before encoding.
Add the system cursor to your recording.
Very small sized and portable (uses a settings file under the AppData folder) executable.
♦ Requires .Net Framework 4.6.1.

AutoFixture 30/08/2016

AutoFixture is an open source library for .NET designed to minimize the 'Arrange' phase of your unit tests in order to maximize maintainability. Its primary goal is to allow developers to focus on what is being tested rather than how to setup the test scenario, by making it easier to create object graphs containing test data.

ChartJS 23/08/2016

Plugin to make charts beautiful

Prism JS - code syntaxt higlighting 23/08/2016

allows user to display code in html with highlighting for your language

Search trees 23/08/2016

n LINQ, expression trees are used to represent structured queries that target sources of data that implement IQueryable<T>. For example, the LINQ provider implements the IQueryable<T> interface for querying relational data stores. The C# compiler compiles queries that target such data sources into code that builds an expression tree at runtime. The query provider can then traverse the expression tree data structure and translate it into a query language appropriate for the data source.
Expression trees are also used in LINQ to represent lambda expressions that are assigned to variables of type Expression<TDelegate>.

Search extensions 23/08/2016

IQueryable Searching
The IQueryable extension methods build expression trees based on your command chain and then sends this request to the data provider when required. This means that your data provider is restricting the records that are brought into memory instead of having all records brought into, and filtered, in memory.
Methods
Search methods available to IQueryable data are:
Containing - target property contains search term or terms
IsEqual - target property equals search term or terms
StartsWith - target property starts with search term or terms